If you’re feeling unsure about the security implications of exposing your own services and systems to the world, then let us tell you now: you’re not alone, and we’re here to help.

During this session Yaara Letz, Tyk Consulting Engineer, will explain how API management and identity management can work together to secure your API programme.In the first part, Yaara will demonstrate the different methods for microservices authentication and authorisation, and illustrate how an API gateway fits into this.

As well as seeing some sample architectures, you’ll hear the pros and cons of a variety of different auth methods.In the second part of the workshop, Yaara will explain why it’s good practice to use a separate Identity Provider (IdP) with your API Management. She’ll finish with walkthroughs of 2 ways to secure an api with Tyk by integrating with a 3rd party IdP that supports the OIDc standard